CVE-2011-4501
First published: Tue Nov 22 2011(Updated: )
The UPnP IGD implementation in Edimax EdiLinux on the Edimax BR-6104K with firmware before 3.25, Edimax 6114Wg, Canyon-Tech CN-WF512 with firmware 1.83, Canyon-Tech CN-WF514 with firmware 2.08, Sitecom WL-153 with firmware before 1.39, and Sweex LB000021 with firmware 3.15 allows remote attackers to establish arbitrary port mappings by sending a UPnP AddPortMapping action in a SOAP request to the WAN interface, related to an "external forwarding" vulnerability.
Credit: cve@mitre.org
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Edimax BR-6104K | =3.21 | |
| Edimax BR-6104K Router Firmware | ||
| Canyon-Tech CN-WF512 | =1.83 | |
| Canyon-Tech CN-WF514 | =2.08 | |
| Canyon-tech Cn-wf512 Router Firmware | ||
| Canyon-tech Cn-wf514 Router Firmware | ||
| Edimax 6114Wg | =1.83 | |
| Edimax 6114Wg | =2.08 | |
| Edimax 6114wg Router Firmware | ||
| Sitecom WL-153 | =1.31 | |
| Sitecom WL-153 | =1.34 | |
| Sitecom WL-153 router firmware | ||
| Sweex LB000021 Router | =3.15 | |
| Sweex LB000021 Router |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is the vulnerability CVE-2011-4501?
CVE-2011-4501 is a security vulnerability in the UPnP IGD implementation of certain Edimax and Canyon-Tech routers that allows remote attackers to exploit network devices.
What devices are affected by CVE-2011-4501?
Devices affected by CVE-2011-4501 include models like Edimax BR-6104K, Edimax 6114Wg, Canyon-Tech CN-WF512, and Sitecom WL-153 with specific firmware versions.
How do I fix CVE-2011-4501?
To fix CVE-2011-4501, users should update their routers to the latest firmware versions provided by the manufacturer.
What is the impact of CVE-2011-4501?
The impact of CVE-2011-4501 can include unauthorized access and control of affected network devices, potentially compromising the security of the connected network.
Is CVE-2011-4501 still a threat in today's networks?
Yes, CVE-2011-4501 can still be a threat, especially in networks that use outdated hardware or firmware, making it essential to regularly update and secure devices.
- collector/nvd-historical
- agent/type
- agent/author
- agent/severity
- agent/references
- agent/weakness
- agent/description
- collector/mitre-cve
- source/MITRE
- agent/last-modified-date
- agent/first-publish-date
- agent/event
- agent/source
- agent/softwarecombine
- agent/tags
- collector/nvd-index
- agent/software-canonical-lookup-request
- vendor/edimax
- canonical/edimax br-6104k
- version/edimax br-6104k/3.21
- canonical/edimax br-6104k router firmware
- vendor/canyon-tech
- canonical/canyon-tech cn-wf512
- version/canyon-tech cn-wf512/1.83
- canonical/canyon-tech cn-wf514
- version/canyon-tech cn-wf514/2.08
- canonical/canyon-tech cn-wf512 router firmware
- canonical/canyon-tech cn-wf514 router firmware
- canonical/edimax 6114wg
- version/edimax 6114wg/1.83
- version/edimax 6114wg/2.08
- canonical/edimax 6114wg router firmware
- vendor/sitecom
- canonical/sitecom wl-153
- version/sitecom wl-153/1.31
- version/sitecom wl-153/1.34
- canonical/sitecom wl-153 router firmware
- vendor/sweex
- canonical/sweex lb000021 router
- version/sweex lb000021 router/3.15